General

  • Target

    3a0302895b0f7577b066f76bf860208072b7859b72fce27af3392fba23225832

  • Size

    438KB

  • Sample

    220625-hw19wsaedj

  • MD5

    2b09aa28eed8c0916f357cb5c70c7bac

  • SHA1

    a39c6322a1b0454c0001141d7b65052076a8281b

  • SHA256

    3a0302895b0f7577b066f76bf860208072b7859b72fce27af3392fba23225832

  • SHA512

    95a8ce4c5bab8a46870e85314af6f55983ca56729f78613ebb649f26d48ef06fb88eb03ab468e613575a0b38094ebe643b9acc55a078b1fa62d5fe46049e12e3

Score
10/10

Malware Config

Targets

    • Target

      3a0302895b0f7577b066f76bf860208072b7859b72fce27af3392fba23225832

    • Size

      438KB

    • MD5

      2b09aa28eed8c0916f357cb5c70c7bac

    • SHA1

      a39c6322a1b0454c0001141d7b65052076a8281b

    • SHA256

      3a0302895b0f7577b066f76bf860208072b7859b72fce27af3392fba23225832

    • SHA512

      95a8ce4c5bab8a46870e85314af6f55983ca56729f78613ebb649f26d48ef06fb88eb03ab468e613575a0b38094ebe643b9acc55a078b1fa62d5fe46049e12e3

    Score
    10/10
    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

    • Drops startup file

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks